Jump to content

BobTN

Members
  • Posts

    4
  • Joined

  • Last visited

Reputation

0 Neutral
  1. So this was a false positive hit?
  2. PS I should add that after the PC locked, I re-scanned using the normal method but scanned only the E drive, that is the drive that contains the target file.
  3. Hy Myrti, Sorry for the delay in responding to you, I have been out of town for the last several weeks away from the PCs with the possible false positives. I tried to scan with developer as the page suggested but the PC locked during/after the scan. The signature files were updated before I tried the scan. The log from the developer scan does not show any hits. The log from the normal scan that I ran about a month ago does. So I will post this log and a zipped copy of the target file. Malwarebytes Anti-Malware 1.62.0.1300 www.malwarebytes.org Database version: v2012.07.31.01 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 Bob :: S..........2 [administrator] 7/30/2012 9:08:40 PM mbam-log-2012-08-01 (23-48-29)_PC2.txt Scan type: Full scan (C:\|D:\|E:\|) Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 294424 Time elapsed: 2 hour(s), 43 minute(s), 6 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 1 E:\S.......1-data-110803\Downloads\Nvidia\nf2_v264_WDMxp\nf2_v264_WDMxp\AudioDrv\ (Trojan.Sirefef) -> No action taken. (end) nvax9x.zip I'd like to know what you find out. Please reply with your results. Thanks, Bob
  4. I routinely run MBAM free using the full scan option to check my systems for any malware. Recently MBAM identified 'trojan.sirefef' in a file that has been present on my pc for a while, through many previous scans. The file is an Nvidia audio driver file. I backup data from this PC to another PC and MBAM hit on the same file in the backup location. These two PCs are XP Pro and kept up to date. My PCs were not experiencing the symptoms that others who seemed to have active infections were discussing in their posts. I just went through an exhaustive cleaning regimin via one of the online tech support antimalware warrior teams to thoroughly check and clean these two PCs. NOTHING was detected. Filename is nvax9x.sys and ist is located in a folder structure which I think was based on the zip file I used to download the updated driver from Nvidia. Folder structure: \Nvidia\nf2_v264\WDMxP\Nf2_v264_WDMxP\AudioDrv\nvax9x.sys. I would suspect that you'd have seen this before, this is a fairly old driver file. I didn't see it in the list of false positives. I can email the file if you folks want to disect it. Can you confirm that this is a false positive? Thanks - Bob
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.